Uploaded image for project: 'Hippo CMS'
  1. Hippo CMS
  2. CMS-13669

Update NPM frontend production dependencies to pass npm audit scan

    XMLWordPrintable

Details

    • Task
    • Status: Closed
    • Normal
    • Resolution: Fixed
    • None
    • 14.3.0
    • None
    • None
    • CI/CD

    Description

      To enable regular scanning of frontend dependencies with npm audit --production we need to get to a baseline with no known required updates.

      Current scan shows jQuery is flagged to be updated to the current latest release, 3.5.1. CMS was already updated to use jQuery 3.5.1 as part of Wicket in CMS-13651.

      Angular JS to be synced to 1.7.9 at minimum, latest 1.8.0.

       

      Note that per the jQuery 3.5 upgrade guide, in 3.5 self closing tags such as <div /> will no longer be expanded to a pair such as <div></div> For this some html tags must be updated to work with html output

      References

      http://blog.jquery.com/2020/04/10/jquery-3-5-0-released/

      https://jquery.com/upgrade-guide/3.5/

      https://github.com/angular/angular.js/blob/master/CHANGELOG.md

      Attachments

        Issue Links

          is backported by

          Task - A task that needs to be done. CMS-13731 [Backport 13.4] Update Angular(JS) frontend dependencies

          • High - High priority, expected behaviour required often required for other tasks
          • Closed

          Activity

            People

              Unassigned Unassigned
              abanck Arent-Jan Banck (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: